Send me more jobs like this

Keywords / Skills : IT Security Analyst, manual testing, security controls, Ruby, Python, PowerScript, JavaScript, Firewall, Database design, IDS/IPS, WLANs, Web applications , Windows, Linux , security protocols , web, mobile application, network technologies, project management

0 - 0 years
Posted: 2019-08-16

Industry
ITES/BPO
Function
IT
Role
Security Analyst
Posted On
16th Aug 2019
Job Ref code
114968
Job Description
Job Description :

Job summary:
Responsible for identifying and demonstrating risk realization of possible exploits within the network and application infrastructure to enable the enhancement of the overall security posture of the organization. The Penetration Tester conducts formal tests to on both application and network environments throughout the organization, documenting test and penetration plans as well as documenting results of testing activities. Testers are expected to perform necessary reconnaissance and network surveys to map targets, research tools technologies leveraged within each test and consult with clients on exploited targets. Testers respond to information security-related questions and inquiries using established information security tools and procedures.
Penetration Testers work closely with a wide range of audiences, to include executive teams, Risk Liaisons, the CISO and various technical teams from Legal and HR to IT expertsand other IT personnel, business and clients to meet these objectives. The prime directive of this highly technical position is to identify and report information technology threats to the Company.
GENERAL DUTIES & RESPONSIBILITIES:

  • Conducts security tests against FIS systems, infrastructure, and applications, following a standard testing methodology using automated tools, ad-hoc tools, and manual testing

  • Executes security controls to prevent hackers from infiltrating company information or jeopardizing programs

  • Researches attempted efforts to compromise security protocols and recommends solutions

  • Creates required information security documentation and completes requests in accordance with requirements

  • Escalates to appropriate management, and provides timely, relevant updates and periodic reports as needed

  • Identifies opportunities and executes plans to improve workflow and understands the business impacts of those improvements for communication to management

  • Works to educate internal partners on identified threats and establishes a partnerships to aid in the remediation processes

EDUCATIONAL REQUIREMENTS:
Bachelor’s degree in computer science or in a related field, 3 plus years experience in Information Security, or the equivalent combination of education, training, or work experience. Security related certifications a plus (e.g., GWAPT, GSEC, GPEN, etc.)
GENERAL KNOWLEDGE, SKILLS & ABILITIES:

  • Proficiency in web/mobile application development and system administration

  • Excellent problem solving, decision-making, and investigative skills

  • Experienced in establishing and maintaining effective working relationships with employees and clients

  • Ability to exercise discretion and maintain confidentiality

  • Excellent verbal and written communication skills to technical and non-technical audiences of various levels in the organization

  • Proficiency in time management, project management, presentation, and organizational skills

  • Working knowledge of security and network technologies, ability to interpret vulnerabilities, exploit and pivot through application and network environments

  • Previous auditing/consulting and/or penetration testing experience

  • Be proficient with the following:

    • Windows/Linux operating systems

    • Web applications and services

    • Firewall, IPsec and SSL VPNs, IDS/IPS, WLANs

    • Database design, implementation and management

    • Cryptography, ciphers and key management

    • Commercial and open source security tools (e.g., Nexpose, Qualys, Metasploit, AppScan, Burp, Cain, Nmap etc.)

    • Scripting (Ruby, Python, PowerScript, JavaScript) and application development skills


About Company

With a 50-year history rooted in the financial services industry, FIS™ is the world's largest global provider dedicated to financial technology solutions. We champion clients from banking to capital markets, retail to corporate and everything touched by financial services. Headquartered in Jacksonville, Florida, our 53,000 worldwide employees help serve more than 20,000 clients in over 130 countries. Our technology powers billions of transactions annually that move over $9 trillion around the globe. FIS is a Fortune 500 company and is a member of Standard & Poor’s 500® Index. FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the FIS Online Privacy Notice.<p></p> FIS is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, genetic information, national origin, disability, veteran status, and other protected characteristics. The EEO is the Law poster is available here and here<p></p> For positions located in the US, the conditions below apply. If you are made a conditional offer of employment, you will be required to undergo a drug test and background check (including criminal record check) ADA Disclaimer: In developing this job description care was taken to include all competencies needed to successfully perform in this position. However, for Americans with Disabilities Act (ADA) purposes, the essential functions of the job may or may not have been described for purposes of ADA reasonable accommodation. All reasonable accommodation requests will be reviewed and evaluated on a case-by-case basis. <p></p> As part of the selection process this role may require an assessment to determine suitability
Similar Jobs
View All Similar Jobs
Walkin for you